CVE-2007-5363

2007-10-1101:17:00

CWE-94

mitre

web.nvd.nist.gov

cve-2007-5363

php

remote file inclusion

admin.panoramic.php

panoramic picture viewer

joomla!

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

High

EPSS

0.018

Percentile

88.2%

JSON

PHP remote file inclusion vulnerability in admin.panoramic.php in the Panoramic Picture Viewer (com_panoramic) mambot (plugin) 1.0 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd

Node

joomlajoomla

webmaster-tipspanoramic_picture_viewerMatch1.0

VendorProductVersionCPE
joomlajoomla*cpe:2.3:a:joomla:joomla:*:*:*:*:*:*:*:*
webmaster-tipspanoramic_picture_viewer1.0cpe:2.3:a:webmaster-tips:panoramic_picture_viewer:1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
joomla	joomla	*	cpe:2.3:a:joomla:joomla::::::::
webmaster-tips	panoramic_picture_viewer	1.0	cpe:2.3:a:webmaster-tips:panoramic_picture_viewer:1.0:::::::*